Abstract

In this paper we describe simple identification and signature schemes which enable any user to prove his identity and the authenticity of his messages to any other user without shared or public keys. The schemes are provably secure against any known or chosen message attack if factoring is difficult, and typical implementations require only 1% to 4% of the number of modular multiplications required by the RSA scheme. Due to their simplicity, security and speed, these schemes are ideally suited for microprocessor-based devices such as smart cards, personal computers, and remote control systems.

6. Bibliography

Fischer, Micali and Rackoff [1984]: A Secure Protocol for the Oblivious Transfer, presented at Eurocrypt, April 1984.Google Scholar

2.

Goldreich, Goldwasser and Micali [1984]: How to Construct Random Functions, 25th Symposium on Foundations of Computer Science, October 1984.Google Scholar

3.

Goldreich, Micali and Wigderson [1986]: Proofs that Yield Nothing But the Validity of the Assertion and the Methodology of Cryptographic Protocol Design, submitted to 27th Symposium on Foundations of Computer Science, November 1986.Google Scholar